search for: gateway_zon

...> I need to add these rules: > ACCEPT net:62.xxx.xxx.202 loc all > ACCEPT net:192.168.176.0/24 loc all > > But, the policy vpn->loc should have made this possible already, > right? > Is my policy file wrong? > Do I need to specify vpn as GATEWAY_ZONE in file ipsec? Something is wrong -- Try moving the ''vpn'' zone to the top of your /etc/shorewall/zones file. If that doesn''t work, please forward the output of "shorewall status". - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented foo...